package com.zdkj.common.security.component;

import com.zdkj.common.core.constant.SecurityConstants;
import com.zdkj.common.security.service.PigxUser;
import org.springframework.security.oauth2.common.DefaultOAuth2AccessToken;
import org.springframework.security.oauth2.common.OAuth2AccessToken;
import org.springframework.security.oauth2.provider.OAuth2Authentication;
import org.springframework.security.oauth2.provider.token.TokenEnhancer;

import java.util.HashMap;
import java.util.Map;

/**
 * @author cui_com
 * @date 2019-09-17
 * <p>
 * token增强，客户端模式不增强。
 */
public class PigxTokenEnhancer implements TokenEnhancer {
    /**
     * Provides an opportunity for customization of an access token (e.g. through its additional information map) during
     * the process of creating a new token for use by a client.
     *
     * @param accessToken    the current access token with its expiration and refresh token
     * @param authentication the current authentication including client and user details
     * @return a new token enhanced with additional information
     */
    @Override
    public OAuth2AccessToken enhance(OAuth2AccessToken accessToken, OAuth2Authentication authentication) {
        if (SecurityConstants.CLIENT_CREDENTIALS
                .equals(authentication.getOAuth2Request().getGrantType())) {
            return accessToken;
        }

        final Map<String, Object> additionalInfo = new HashMap<>(8);
        PigxUser pigxUser = (PigxUser) authentication.getUserAuthentication().getPrincipal();
        additionalInfo.put(SecurityConstants.DETAILS_USER_ID, pigxUser.getId());
        additionalInfo.put(SecurityConstants.DETAILS_USERNAME, pigxUser.getUsername());
        additionalInfo.put(SecurityConstants.DETAILS_DEPT_ID, pigxUser.getDeptId());
        additionalInfo.put(SecurityConstants.DETAILS_TENANT_ID, pigxUser.getTenantId());
        additionalInfo.put(SecurityConstants.DETAILS_LICENSE, SecurityConstants.ZDKJ_LICENSE);
        additionalInfo.put(SecurityConstants.ACTIVE, Boolean.TRUE);
        additionalInfo.put(SecurityConstants.DETAILS_NIKENAME, pigxUser.getNikeName());

        additionalInfo.put(SecurityConstants.DETAILS_LINECODE, pigxUser.getLineCode());
        additionalInfo.put(SecurityConstants.DETAILS_STATIONCODE, pigxUser.getStationCode());
        additionalInfo.put(SecurityConstants.DETAILS_USERCODE, pigxUser.getUserCode());
        additionalInfo.put(SecurityConstants.DETAILS_BELONGTOLINE, pigxUser.getBelongToLine());

        ((DefaultOAuth2AccessToken) accessToken).setAdditionalInformation(additionalInfo);
        return accessToken;
    }
}
